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DETAILED ACTION 

1 . This office action is in response to communication filed on 12/18/2008. Claims 1 , 
3, 5-6, 8 and 14 have been amended. Claim 2 was previously canceled. Claims 1-14 
are pending. 

Response to Amendment 

2. Objection to the specification has been withdrawn due to amendment. 
Objections to claims 1 , 3, 5-6, and 8 have been withdrawn due to amendments. 
Rejections of claims 6 and 14 under 35 USC 112, second paragraph have been 

withdrawn due to amendments. 

Response to Arguments 

3. Applicant's arguments, see lines 2-4 and last 3 lines of page 9, filed 12/18/2008, 
with respect to the rejection(s) of claim(s) 8 and 1 under 102 (b) and 103 (a) 
respectively have been fully considered and are persuasive. Therefore, the rejection of 
claims 1 and 8 as well as their dependent claims has been withdrawn. However, upon 
further consideration, a new ground(s) of rejection is made in view of newly found prior 
art reference(s). 

However, with respect to applicant's argument that nowhere in the cited portions 
of Lewis or the remainder of the patent is an access point disclosed which retains an old 
encryption key and current encryption key, the examiner respectfully disagrees. Lewis 
discloses the previous ENCRYPT key is used by the access point to provide the mobile 
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terminal with a new ENCRYPT key (Col. 6, lines 55-57). Thus, Lewis discloses the 
access point retains an old encryption key (i.e. previous ENCRYPT key). Furthermore, 
Lewis also discloses the access point retaining a current encryption key (i.e. ENCRYPT 
key) as seen on Col. 6, lines 46-55. 

Claim Objections 

4. Claims 4 and 8-1 2 are objected to because of the following informalities: 

Claim 4 is currently labeled as (Original) but it appears that claim 4 has been 
amended. This is because current claim 4 line 2 recites "keys" which is different from 
"key," in original claim 4. 

Moreover, the objection of claim 4 in prior office action has not been addressed 
and thus is repeated below. 

Claim 4 line 2 recites "the new keys" which appears to be referred to "new 
encryption key" in line 5 of claim 1 and hence is inconsistent. Furthermore, lines 3-5 
recite "the new key" which also appears to be referred to "new encryption key" in line 5 
of claim 1 and thus is inconsistent. In addition, line 6 recites "the old key" and "the 
current key" which appears to be referred to "old encryption key" and "current encryption 
key" in claim 1 respectively and thus is inconsistent. 

Claim 8-12 line 1 recites the limitation "mechanism". It is unclear if these claims 
are directed to a method or a system since "mechanism" can be interpreted as both. 
Based on the claim language, it appears that these claims are directed to a system and 
will be interpreted as such hereinafter for examining purposes. 
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Appropriate correction is required. 

Claim Rejections - 35 USC § 103 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claims 1, 7-8 and 13 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Lewis US 6,526,506 (hereinafter "Lewis") in view of Jordan et al. US 2004/0081320 
(hereinafter "Jordan"). 

Regarding claim 1, Lewis discloses "A key synchronization method for a 
wireless network comprising:" as [the access point generates a new ENCRYPT key 
to be use as the current ENCRYPT key (Col. 12, lines 43-44), transmits the new 
ENCRYPT key to the mobile terminal (Col. 12, lines 44-46), and determines if the 
message received from the mobile terminal has been encrypted using the current 
ENCRYPT key (Col. 12, line 67-Col. 13, lines 1-2)] "setting a current encryption key 
[ENCRYPT key (Col. 6, line 46)] and an old encryption key [previous ENCRYPT key 
(Col. 6, line 57)] at an access point [an access point 54 (Col. 6, line 55)] in the 
wireless network;" [wireless network (Col. 1, line 26)] "generating a new encryption 
key at the access point" as [Periodically, the access point may be instructed to use a 
different or new ENCRYPT key (Col. 12, lines 43-44)] "resetting the current 
encryption key to equal the newly generated encryption key," as [since the access 
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point is instructed to use a different or new ENCRYPT key (Col. 12, lines 43-44), it is 
obvious that the new ENCRYPT key now becomes the current encryption key] 
"communicating the newly generated encryption key to the station in an 
encrypted form using the old encryption key;" as [The access point communicates 
the new ENCRYPT key using the previous ENCRYPT key (Col. 12, lines 44-46)] 
"indicating a decryption failure for a data frame received from the station when 
the encryption key used by the station does not match the current encryption 
key" as [Fig. 7, access point determines if the message from received from the mobile 
terminal is encrypted with the current ENCRYPT key, if not, the access point follows 
appropriate actions described in steps 226-234] 

Lewis does not specifically disclose "resetting the old encryption key to equal 
an encryption key being used by a station in communication with the access 
point" and "wherein a data frame that failed to decrypt using the current 
encryption key is decrypted using the old encryption key". 

However, Jordan discloses a password key synchronization method wherein a 
message gateway reverts back to a password key that is prior to the most recent 
updated password key (i.e. old password key) to decrypt a message received from a 
wireless device after unsuccessfully decrypting the message using the updated 
password key (i.e. current password key) (Figs. 10-11, Col. 8, Par. 0089, last 6 lines 
and Par. 0093, lines 1-8). 

Jordan and Lewis are analogous art because they are in the same field of 
endeavor of secure data communication in a wireless network. 
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It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify Lewis's invention by resetting the old encryption key to equal an 
encryption key being used by a station in communication with the access point and 
wherein a data frame that failed to decrypt using the current encryption key is decrypted 
using the old encryption key as described by Jordan for the purpose of resynchronizing 
password keys upon suffering a transmit or receive error (Jordan, Col. 8, Par. 0087, 
lines 3-6 and lines 13-15). 

Regarding claim 7, Lewis in view of Jordan discloses "The method according to 
claim 1, wherein said step of setting is performed by the access point for each 
station in the wireless network" as [see rejection to claim 1 above and Lewis's Fig. 1]. 

Regarding claim 8, Lewis discloses "A key synchronization mechanism for a 
wireless network comprising:" [the access point generates a new ENCRYPT key to 
be use as the current ENCRYPT key (Col. 12, lines 43-44), transmits the new 
ENCRYPT key to the mobile terminal (Col. 12, lines 44-46), and determines if the 
message received from the mobile terminal has been encrypted using the current 
ENCRYPT key (Col. 12, line 67-Col. 13, lines 1-2)] "at least one station in the 
wireless network;" ["The wireless communication system 50 also includes one or more 
mobile terminals 66" (Fig. 1, Col. 4, lines 28-29)] "and at least one access point in the 
wireless network ["Connected to the system backbone 52 are several access points 
54" (Fig. 1, Col. 4, lines 14-15)] maintaining an old encryption key [previous 
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ENCRYPT key (Col. 6, line 57). Note that the access point does maintain an old 
encryption key (i.e. previous ENCRYPT key) since the previous ENCRYPT key is used 
by the access point to provide the mobile terminal with a new ENCRYPT key (Col. 6, 
lines 55-57)] and a new encryption key through a key rotation interval for each of 
said at least one station [Periodically, the access point may be instructed to use a 
different or new ENCRYPT key (Col. 12, lines 43-44) and the new ENCRYPT key is 
transmitted to the mobile terminal (Col. 12, lines 44-46)] "said access point using said 
new encryption key when a first data frame correctly encrypted with said new 
encryption key is received from said at least one station" [If the message is 
encrypted using the current ENCRYPT key as determined in step 222, the access point 
decrypts the message (Lewis, Fig. 7, Col. 13, lines 8-9). Furthermore, by disclosing 
when it is determined that the message received is not encrypted using the current 
ENCRYT key, the access point does not decrypt the message but proceeds to step 226 
(Lewis, Fig. 7, Col. 13, lines 13-15, 34-35), Lewis also discloses the access point starts 
using the new ENCRYPT key when a first message correctly encrypted under the new 
ENCRYPT key is received from the mobile terminal] 

Lewis does not specifically disclose "and using said old encryption key when 
decryption of a data frame received from said at least one station falls due to 
mismatched keys". 

However, Jordan discloses a password key synchronization method wherein a 
message gateway reverts back to a password key that is prior to the most recent 
updated password key (i.e. old password key) to decrypt a message received from a 
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wireless device after unsuccessfully decrypting the message using the updated 
password key (i.e. current password key) (Figs. 10-11, Col. 8, Par. 0089, last 6 lines 
and Par. 0093, lines 1-8). 

Jordan and Lewis are analogous art because they are in the same field of 
endeavor of secure data communication in a wireless network. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify Lewis's invention by "using said old encryption key when 
decryption of a data frame received from said at least one station fails due to 
mismatched keys" as described by Jordan for the purpose of resynchronizing password 
keys upon suffering a transmit or receive error (Jordan, Col. 8, Par. 0087, lines 3-6 and 
lines 13-15). 

Regarding claim 13, Lewis in view of Jordan discloses "The method according 
to claim 1, wherein the new encryption key is generated at the access point upon 
expiration of a key refresh interval" as [Periodically, the access point may be 
instructed to use a different or new ENCRYPT key (Lewis, Col. 12, lines 43-44)]. 

7. Claims 3, 4, 9 and 14 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Lewis in view of Jordan and further in view of Loc et al. US 7,293,289 (hereinafter 
"Loc"). 

Regarding claim 3, Lewis in view of Jordan discloses "The method according to 
claim 1" and "decrypting received data frames associated with said out-of-sync 
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counter at the access point using the old encryption key" as [see rejection to claim 
1 above] but does not specifically disclose "incrementing an out-of-sync counter in 
the access point when said decryption failure occurs due to the encryption key 
used by the station not matching the current encryption key". 

However, Loc discloses a method for detecting a security breach in a network 
wherein "Each time a client 108 fails to successfully decrypt a packet, the encryption 
failure counter is incremented" (Fig. 5, Col. 6, lines 59-61). 

Loc, Lewis, and Jordan are analogous art because they are in the same field of 
secure data communication in a wireless network. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by incrementing an out- 
of-sync counter in the access point when said decryption failure occurs due to the 
encryption key used by the station not matching the current encryption key as described 
by Loc in order to detect a security breach in a network (Loc, Col. 1 , lines 22-23). 

Regarding claim 4, Lewis in view of Jordan discloses "The method according to 
claim 1, further comprising: decrypting, using the new keys the received data 
frame from the station when the access point determines the station sending the 
received packet is using the new key, said access point starting to use the new 
key when a first data frame correctly encrypted with the new key is received from 
the station;" as [If the message is encrypted using the current ENCRYPT key as 
determined in step 222, the access point 54 decrypts the message (Lewis, Fig. 7, Col. 
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13, lines 8-9). Furtliermore, by disclosing when it is determined that the message 
received is not encrypted using the current ENCRYT key, the access point does not 
decrypt the message but proceeds to step 226 (Lewis, Fig. 7, Col. 13, lines 13-15, 34- 
35), Lewis also makes it obvious that the access point starts using the new ENCRYPT 
key when a first message is correctly encrypted under the new ENCRYPT key by the 
mobile terminal. Moreover, Jordan also discloses this limitation on Figs. 10-11, Col. 8, 
Pars. 0088-0089] "re-setting the old key to equal the current key when decryption 
is successful; as [Jordan discloses the message gateway receives an encrypted first 
message (at step 1305 of Fig. 10) and decrypts it with an updated password key (step 
1310 of Fig. 10) and if the updated password key is correct, then the decrypted 
message is displayed (step 1320 of Fig. 10). If the updated password key is incorrect, 
then the message gateway reverts back to a password key that is prior to the most 
recent updated password key (i.e. old password key) (step 1325 of Fig. 10) or in other 
words the current password key is the old password key. Then the process proceeds 
through steps 1330-1340 and back to step 1305. Thus, it is obvious that the old 
password key is reset to the current password key once the updated password key is 
correct or in other words the updated password key becomes the current password key 
and the current password key becomes the old password key] but does not specifically 
disclose "and re-setting an out-of-sync counter to zero upon successful 
decryption". 
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However, Loc discloses a method for detecting a security breacli in a networl< 
wherein "Each time client 108 successfully decrypts a pacl<et, the encryption failure 
counter is reset to zero" (Loc, Col. 6, lines 57-69). 

Loc, Lewis, and Jordan are analogous art because they are in the same field of 
secure data communication in a wireless network. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by re-setting an out-of- 
sync counter to zero upon successful decryption as described by Loc in order to detect 
a security breach in a network (Loc, Col. 1, lines 22-23). 

Regarding claim 9, Lewis in view of Jordan discloses "The key synchronization 
mechanism according to claim 8" but does not specifically disclose "wherein said at 
least one access point further maintains an out-of-sync counter to track the 
number of packets where decryption fails due to mismatched keys". 

However, Loc discloses a method for detecting a security breach in a network 
wherein "Each time client 108 fails to successfully decrypt a packet, the encryption 
failure counter is incremented" (Fig. 5, Col. 6, lines 59-61). 

Loc, Jordan and Lewis are analogous art because they are in the same field of 
secure data communication in a wireless network. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by including an 
encryption failure counter at the access point which keeps track of the number of 
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packets that were not successfully decrypted due to mismatched keys as described by 
Loc in order to detect a security breach in a network (Loc, Col. 1 , lines 22-23). 

Regarding claim 14, Lewis in view of Jordan and further in view of Loc discloses 
"The method according to claim 3, wherein said out-of-sync counter comprises a 
predetermined threshold that if exceeded causes communication to terminate 
between the access point and a source of the data frames causing the threshold 
of said out-of-sync counter to be exceeded" as ["When the encryption failure counter 
reaches a predetermined threshold n (that is, when n consecutive failures have 
occurred) (step 512), client 108 sends an alert packet to access point" (Loc, Col. 6, lines 
61-65). Furthermore, upon receiving the alert of a security breach, the access point 
"responds by immediately removing the MAC address of client 108 from its list of 
authorized clients, by ceasing to send any packets to the MAC address of client 108, 
and by discarding all packets that are received from the MAC address of client 108" 
(Loc, Col. 6, lines 5-9)]. 

8. Claims 5-6 and 1 0-1 2 are rejected under 35 U.S.C. 1 03(a) as being unpatentable 
over Lewis in view of Jordan and further in view of Kelem et al. US 6,118,869 
(hereinafter "Kelem"). 

Regarding claim 5, Lewis in view of Jordan discloses "The method according to 
claim 1" but does not specifically disclose "further comprising setting the old 
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encryption key equal to a null value, said null value representing a no encryption 
mode". 

However, Kelem discloses if decryption is not desired, a decryption key value of 
0 is chosen (Col. 4, lines 18-20). By disclosing setting a decryption key to a null value 
or 0 when no decryption is desired, Kelem also makes it obvious to set an encryption 
key to a null value when no encryption is desired. 

Kelem, Lewis, and Jordan are analogous art because they are in the same field 
of endeavor of encryption and/or decryption key protection. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by setting the old key 
equal to a null value, said null value representing a no encryption mode as taught by 
Kelem in order to modify the key thereby providing a high level of security (Kelem, Col. 
2, lines 10-14). 

Regarding claim 6, Lewis in view of Jordan discloses "The method according to 
claim 1," but does not specifically disclose "further comprising setting the current 
encryption key and the old encryption key to a null value, said null value 
representing a no encryption mode". 

However, Kelem discloses if decryption is not desired, a decryption key value of 
0 is chosen (Col. 4, lines 18-20). By disclosing setting a decryption key to a null value 
or 0 when no decryption is desired, Kelem also makes it obvious to set an encryption 
key to a null value when no encryption is desired. 
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Kelem, Lewis, and Jordan are analogous art because they are in the same field 
of endeavor of encryption and/or decryption key protection. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by setting the current 
encryption key and the old encryption key to a null value, said null value representing a 
no encryption mode as taught by Kelem in order to modify the keys to provide a high 
level of security (Kelem, Col. 2, lines 10-14). 

Regarding claim 10, Lewis in view of Jordan discloses "The key 
synchronization mechanism according to claim 8," but does not specifically disclose 
"wherein said at least one access point is capable of setting the old encryption 
key to a null value, said null value representing a no encryption mode". 

However, Kelem discloses if decryption is not desired, a decryption key value of 
0 is chosen (Col. 4, lines 18-20). By disclosing setting a decryption key to a null value 
or 0 when no decryption is desired, Kelem also makes it obvious to set an encryption 
key to a null value when no encryption is desired. 

Kelem, Jordan and Lewis are analogous art because they are in the same field of 
endeavor of encryption and/or decryption key protection. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by setting the old 
encryption key at the access point to a null value which represents a no encryption 
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mode as taught by Kelem in order to modify the key thereby providing a high level of 
security (Kelem, Col. 2, lines 10-14). 

Regarding claim 11, Lewis in view of Jordan discloses "The key 
synchronization mechanism according to claim 8," but does not specifically disclose 
"wherein said at least one access point is capable of setting the new encryption 
key to a null value, said null value representing a no encryption mode". 

However, Kelem discloses if decryption is not desired, a decryption key value of 
0 is chosen (Col. 4, lines 18-20). By disclosing setting a decryption key to a null value 
or 0 when no decryption is desired, Kelem also makes it obvious to set an encryption 
key to a null value when no encryption is desired. 

Kelem, Jordan and Lewis are analogous art because they are in the same field of 
endeavor of encryption and/or decryption key protection. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by setting the new 
encryption key at the access point to a null value which represents a no encryption 
mode as taught by Kelem in order to modify the key thereby providing a high level of 
security (Kelem, Col. 2, lines 10-14). 

Regarding claim 12, Lewis in view of Jordan discloses "The key 
synchronization mechanism according to claim 8," but does not specifically disclose 
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"wherein said at least one access point initially sets the old encryption key to a 
null value". 

However, Kelem discloses if decryption is not desired, a decryption key value of 
0 is chosen (Col. 4, lines 18-20). By disclosing setting a decryption key to a null value 
or 0 when no decryption is desired, Kelem also makes it obvious to set an encryption 
key to a null value when no encryption is desired. 

Kelem, Jordan and Lewis are analogous art because they are in the same field of 
endeavor of encryption and/or decryption key protection. 

It would have been obvious to a person of ordinary skill in the art at the time of 
the invention to modify the invention of Lewis in view of Jordan by setting the old 
encryption key at the access point initially to a null value which represents a no 
encryption mode as taught by Kelem in order to modify the key thereby providing a high 
level of security (Kelem, Col. 2, lines 10-14). 

Conclusion 

9. Examiner cites particular columns and line numbers in the references as applied 
to the claims below for the convenience of the applicant. Although the specified citations 
are representative of the teachings in the art and are applied to the specific limitations 
within the individual claim, other passages and figures may apply as well. It is 
respectfully requested that, in preparing responses, the applicant fully consider the 
references in entirety as potentially teaching all or part of the claimed invention, as well 
as the context of the passage as taught by the prior art or disclosed by the examiner. 
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10. Any inquiry concerning this communication or earlier communications from tine 
examiner should be directed to TRONG NGUYEN whose telephone number is 
(571)270-7312. The examiner can normally be reached on Monday through Thursday 
7:30 AM - 5:00 PM EST. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, NASSER MOAZZAMI can be reached on (571)272-4195. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-21 7-91 97 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/TN/ 
Examiner 

/Nasser G Moazzami/ 

Supervisory Patent Examiner, Art Unit 2436 
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